Hello Denis, Please refer document below to understand the Security Permission Model in the Apache OFBiz project:
https://cwiki.apache.org/confluence/x/NIBr -- Kind Regards, Ashish Vijaywargiya Vice President of Operations *HotWax Systems* *Enterprise open source experts* http://www.hotwaxsystems.com On Tue, Aug 26, 2025 at 4:07 PM Denis G <[email protected]> wrote: > Hi All, > Can someone explain how permissions check works for entities? I found only > restrictions based on application, entity and action (view/edit/admin). > Is it possible to restrict access to entity where field_1 <> value_1 ? > > For example: > 1. I want to restrict user A to work only with purchase orders. That means, > that permission check should look into order_header and check > order_type_id. If it is equal to "PURCHASE_ORDER" - allow to change > (create/edit/delete), else if it is equal to "SALES_ORDER" prohibit. As I > understood based on demo data - it IS possible with standard functions. > > 2. Is it possible to allow user A to create purchase orders for Party > Company1 (internal organization) and sales orders for Party Company2. (and > don't allow to create orders for other Parties) > > 3. Is it possible to allow accountant to use GLAcccounts in GL > Transactions, where GL Account Type ID = Customer, Supplier and only for > them? > > Is it possible to find somewhere explanation of Security Checks? > > BR, > Denis >
